CVE-2026-43165

MEDIUM

hwmon: (nct7363) Fix a resource leak in nct7363_present_pwm_fanin

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: hwmon: (nct7363) Fix a resource leak in nct7363_present_pwm_fanin When calling of_parse_phandle_with_args(), the caller is responsible to call of_node_put() to release the reference of device node. In nct7363_present_pwm_fanin, it does not release the reference, causing a resource leak.

References (3)

Core 3

Core References

https://git.kernel.org/stable/c/c8cde3ddd12ad7d0e6b5a3e0ea3914a9a778adf4

https://git.kernel.org/stable/c/fb99b58763a95e20b214fc1dd86837ae00a400b7

https://git.kernel.org/stable/c/4923bbff0bcffe488b3aa76829c829bd15b02585

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (12)

Linux/Linux < 6.13

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 4923bbff0bcffe488b3aa76829c829bd15b02585

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - c8cde3ddd12ad7d0e6b5a3e0ea3914a9a778adf4

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - fb99b58763a95e20b214fc1dd86837ae00a400b7

Linux/Linux 46b94c485ed197bc681da242440c6e2315697c57 - 4923bbff0bcffe488b3aa76829c829bd15b02585

Linux/Linux 46b94c485ed197bc681da242440c6e2315697c57 - c8cde3ddd12ad7d0e6b5a3e0ea3914a9a778adf4

Linux/Linux 46b94c485ed197bc681da242440c6e2315697c57 - fb99b58763a95e20b214fc1dd86837ae00a400b7

Linux/Linux 6.13

Linux/Linux 6.18.16 - 6.18.*

Linux/Linux 6.19.6 - 6.19.*

... and 2 more

Published May 06, 2026

Tracked Since May 06, 2026